Spamvertised ‘BT Business Direct Order’ themed emails lead to malware


By Dancho Danchev

Over the past 24 hours, cybercriminals have been spamvertising millions of emails targeting customers of BT’s Business Direct in an attempt to trick its users into executing the malicious attachment found in the emails. Upon executing it, the malware opens a backdoor on the infected host, allowing the cybercriminals behind the campaign to gain complete access to the affected host.

More details:

Screenshot of the spamvertised email:

Detection rate for the malicious attachment: MD5: 8d0e220ce56ebd5a03c389bedd116ac5 – detected by 29 out of 43 antivirus scanners as Trojan-Ransom.Win32.Gimemo.ashm

Webroot SecureAnywhere users are proactively protected from this threat.

You can find more about Dancho Danchev at his LinkedIn Profile. You can also follow him on  Twitter.

Join the Conversation

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s